This is intended to be a firetalk with power-pack presentation on how you can quickly pick some cool things that bad actors are doing, right away from Bro (Now Zeek) logs, without doing ANY kind of customization or loading super cool custom scripts. Isn't that neat! Yes, Bro can detect some neat stuff with just a bare minimum running configuration and you can flaunt all the new findings from the Bro logs in front of your colleagues and Friends! (P.S: Not Sure what is Bro, How to install and run it? - No worries, attend ""The Bro Primer"" talk on Friday to get your feet wet in Broland!)
Audience: Everyone
Fatema Bannat Wala is a Security Engineer at the University of Delaware where her responsibilities include monitoring network traffic for intrusions and malicious activities. Fatema has held prior roles in security research and software engineering and she holds CISSP certification and GIAC security certifications in intrusion analysis, incident handling and penetration testing.